Fix potential ReDoS vulnerability as reported by Doyensec

2025-09-28 08:28:47 +03:00 · 2021-02-12 09:53:26 +07:00 · 2021-02-12 09:53:26 +07:00 · 809439e20e
commit 809439e20e
parent 5b83893476
1 changed files with 2 additions and 2 deletions
--- a/src/ua-parser.js
+++ b/src/ua-parser.js
@ -620,7 +620,7 @@
            /android.+[;\/]\s*(Q[T|M][\d\w]+)\s+build/i                         // Verizon Tablet
            ], [MODEL, [VENDOR, 'Verizon'], [TYPE, TABLET]], [

-            /android.+[;\/]\s+(Barnes[&\s]+Noble\s+|BN[RT])(V?.*)\s+build/i     // Barnes & Noble Tablet
+            /android.+[;\/]\s+(Barnes[&\s]+Noble\s+|BN[RT])(\S(?:.*\S)?)\s+build/i     // Barnes & Noble Tablet
            ], [[VENDOR, 'Barnes & Noble'], MODEL, [TYPE, TABLET]], [

            /android.+[;\/]\s+(TM\d{3}.*\b)\s+build/i                           // Barnes & Noble Tablet
@ -694,7 +694,7 @@
            /(android[\w\.\s\-]{0,9});.+build/i                                 // Generic Android Device
            ], [MODEL, [VENDOR, 'Generic']], [

-            /(phone)/i,
+            /(phone)/i
            ], [[TYPE, MOBILE]]
        ],